t; To: [EMAIL PROTECTED]
> Subject: Re: [PHP] encrypting passwords etc..
>
>
> We have a similar set up at our work, but we still encrypt our users'
> passwords. That way not even the dba knows what passwords other people use,
> although the s/he can still change the passwo
We have a similar set up at our work, but we still encrypt our users'
passwords. That way not even the dba knows what passwords other people use,
although the s/he can still change the password for any user on our site. A
lot of people use the same password for everything they do, and it would
"security is measured by the weakest link in the chain"
so I would say that the database needs to be well protected and
the password encrypted.
py
At 12:14 PM 1/17/2002 -0800, you wrote:
>We had a client who wanted us to encrypt their
>passwords. Our argument was that maybe their database
>is
We had a client who wanted us to encrypt their
passwords. Our argument was that maybe their database
is not well protected. Only the dba and the
application should have access to the database.
No-one else should be able to view their data anyways.
We didn't see any need to encrypt the passwords.
Ok I got it working now, with the update and database connect etc.. thanks
guys :)
this is not a problem(yet), more a thought.. is it really necesary to
encrypt passwords, I mean, what does it prevent, me from seeing them using
mysql.exe ? :p
I tried and it worked fine to almost all points.. worke
5 matches
Mail list logo
